[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#703926: marked as done (tpu: libsocialweb/0.25.20-2.1)



Your message dated Tue, 26 Mar 2013 08:21:02 +0000
with message-id <20130326082102.GI5608@ernie.home.powdarrmonkey.net>
and subject line Re: Bug#703926: tpu: libsocialweb/0.25.20-2.1
has caused the Debian Bug report #703926,
regarding tpu: libsocialweb/0.25.20-2.1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
703926: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703926
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: tpu


Hi,

 I want to put libsocialweb-0.25.20-2.1 to t-p-u to fix CVE-2012-4511.


diff -Nru libsocialweb-0.25.20/debian/changelog libsocialweb-0.25.20/debian/changelog
--- libsocialweb-0.25.20/debian/changelog	2012-06-22 12:08:40.000000000 +0900
+++ libsocialweb-0.25.20/debian/changelog	2013-03-25 08:47:37.000000000 +0900
@@ -1,3 +1,11 @@
+libsocialweb (0.25.20-2.1) testing-proposed-updates; urgency=low
+
+  * Non-maintainer upload.
+  * debian/patches
+    - add CVE-2012-4511.patch
+
+ -- Hideki Yamane <henrich@debian.org>  Mon, 25 Mar 2013 08:46:56 +0900
+
 libsocialweb (0.25.20-2) unstable; urgency=low
 
   * MultiArch support
diff -Nru libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch
--- libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch	1970-01-01 09:00:00.000000000 +0900
+++ libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch	2013-03-25 08:46:37.000000000 +0900
@@ -0,0 +1,18 @@
+Description: patch for CVE-2012-4511
+
+---
+Origin: upstream
+Bug-Debian: http://bugs.debian.org/690675
+Last-Update: 2013-03-25
+
+--- libsocialweb-0.25.20.orig/services/flickr/flickr.c
++++ libsocialweb-0.25.20/services/flickr/flickr.c
+@@ -255,7 +255,7 @@ online_notify (gboolean online, gpointer
+   SW_DEBUG (FLICKR, "Online: %s", online ? "yes" : "no");
+ 
+   if (online) {
+-    got_tokens_cb (priv->proxy, TRUE, g_object_ref (service));
++    credentials_updated (service);
+   } else {
+     priv->authorised = FALSE;
+ 
diff -Nru libsocialweb-0.25.20/debian/patches/series libsocialweb-0.25.20/debian/patches/series
--- libsocialweb-0.25.20/debian/patches/series	2011-06-04 22:45:22.000000000 +0900
+++ libsocialweb-0.25.20/debian/patches/series	2013-03-25 08:45:19.000000000 +0900
@@ -1 +1,2 @@
 01_detect_NM_and_ConnMan.patch
+CVE-2012-4511.patch

--- End Message ---
--- Begin Message ---
On Tue, Mar 26, 2013 at 08:00:13AM +0900, Hideki Yamane wrote:
> On Mon, 25 Mar 2013 22:38:14 +0000
> Jonathan Wiltshire <jmw@debian.org> wrote:
> > Please go ahead and ping this bug when it is uploaded.
> 
>  Thanks, uploaded.

Seems to be building happily; approved.

Thanks,

-- 
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

<directhex> i have six years of solaris sysadmin experience, from
            8->10. i am well qualified to say it is made from bonghits
			layered on top of bonghits

Attachment: signature.asc
Description: Digital signature


--- End Message ---

Reply to: